A vulnerability marked as problematic has been reported in looswebstudio Highlighting Code Block Plugin up to 2.2.0 on WordPress. This affects an unknown function of the component Admin Settings Handler. Performing a manipulation results in cross site scripting.
This vulnerability is identified as CVE-2026-12108. The attack can be initiated remotely. There is not any exploit available.